News from around the web recently revolved around security breaches and hacked websites. And when news broke out, many others found out about breaches on their systems too. Beefing up security on their end was too late.
For us end-users, protection is likewise necessary. Examples of everyday threats include viruses and DNS poisoning. However, it is not limited to those. Like the saying goes an ounce of prevention is better than a pound of cure. These attacks may look simple but the impact may be huge -- a big chain reaction. If you have lost data due to a virus before, we don't have to tell you how painful (and expensive) that experience can be.
One good way to overcome DNS poisoning is to setup you own DNS cache that forwards requests straight and direct to root DNS servers or trusted DNS servers. Don't rely on your ISP for DNS services when you can put up your own. It is very easy!
Bind is the actively developed software for this purpose. It is compatible to just about any operating system out there and bind is the same software we will deploy. For Windows, TreeWalk is the trunk that is freely available. Download the application installer directly from the developer or any of the mirrors.
Install it and start the service, there is no need to reboot after install. Open a command prompt as Administrator and start the service with net start twdns. Or use the Management Console (Start > Run.. > services.msc), scroll down to twdns and start the service.
The software installs itself on C:\Windows\System32\dns on 32-bit machines. While on 64-bit ones the path is C:\Windows\SysWOW64\dns. Then just configure the system to use the local DNS server. It is now recommended to turn off Windows very own DNS cache or DNS client. It would make no sense for it running in parallel with bind.
If you followed our recommendation of running your own proxy server on your computer system, stay tuned as we will utilize the DNS cache we just installed with our proxy server.